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(54) Method and system for providing anonymity in an IP telephony network 



(57) Means for providing anonymity in a Voice-over 
IP (VoIP) telephony network for calls established be- 
tween a calling endpoint 120 and a called endpoint 130. 
The calling and called endpoints 120. 130 have respec- 
tive IP addresses and can be under the control of a sin- 
gle IP call server 110 or separate IP call servers 110, 
310. An IP address is obtained from a network address 
translator 1 50 that is operatively connected to the I P call 
server 110. The IP call server 110 then substitutes the 
IP address of the calling endpoint 120 with the IP ad- 



dress obtained from the network address translator 150 
in all call signaling messages Intended for the called 
endpoint 130. Conversely, the IP call server 110 substi- 
tutes the IP address obtained from the network transla- 
tor 150 with the IP address of the calling endpoint 120 
in all call signaling messages intended for the calling 
endpoint 120. The end result is the setup and establish- 
ment of a VoIP call between the endpoints 120, 130 in 
which the actual IP address of each endpoint is un- 
known to the other. 
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Description 

FIELD OF THE INVENTION 

[0001 ] The present invention relates generally provid- 
ing additional anonymity to endpoints in a Voice-over IP 
(VoIP) telephony network. 

BACKGROUND OF THE INVENTION 

[0002] There are mechanisms for providing anonym- 
ity when placing telephone calls over circuit switched tel- 
ephone networks. Features like calling number delivery 
blocking prevent the display of the calling number and 
other directory information. Similar features exist for 
packet switched telephony networks like Voice-over IP 
(VoIP). The call signaling mechanisms of VoIP telepho- 
ny networks can also provide calling number delivery 
blocking features. However, in a VoIP telephony net- 
work there are two distinct links used in making a call. 
One link is a call signaling path which is used by network 
Infrastructure equipment to set up and establish a call 
between the endpoints. The other link is a bearer path 
which carries the VoIP data packets that constitute the 
actual conversation between the endpoints. 
[0003] The call signaling path can prevent endpoint 
identffk^ation infonnation from being provided to the oth- 
er endpoint. However, using Intemet Protocol (IP) trans- 
port techniques for the media stream (voice data pack- 
ets) reveals the IP address of the nodes being used for 
the communication session. Thus, some endpoint iden- 
tification Information can be obtained by knowing the IP 
addresses of the nodes Involved in the communication 
session. 

[0004] What is needed is a means for shielding end- 
point identification information in a packet data teleph* 
ony network such as Voice-over IP (VoIP) that does not 
require significant network infrastructure changes. 

SUMMARY OF THE INVENTION 

[0005] Strategic use of Network Address Translation 
(NAT) provides a means for shielding the true IP ad- 
dresses of the nodes involved in the communication 
session. Use of a NATbox is controlled by IP call servers 
In a VoIP network in order to support signaling of the 
correct addresses to establish a connection between 
the endpoints. 

[0006] Implementations that call for a NAT box to un- 
derstand each protocol (and there can be several) used 
to signal the creation of a communcation session and 
to further understand the implied desired behavior re- 
ciuii 6 ^ high degree of added inieiltqence lo ihe neiworK 
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structure intelligence dramatically slows down the rate 
of service deployment since the entire network must be 
upgraded In order to support a new service protocol be- 
fore it can be rolled out. 



[0007] The present invention uses a control protocol 
to signal the need for Network Address Translation 
(NAT) functionality and directs a media (voice packet 
data) stream to the appropriate translated node ad- 
5 dress. Either a proactive Common Open Policy Servk^ 
(COPS) implementation or media gateway control pro- 
tocol implementations can be used to deliverthe control 
protocol messages. 

[0008] In accordance with a first embodiment of the 
10 invention is a method of providing anonymity in a Voice- 
over IP (VoIP) telephony network for calls established 
between a calling endpoint and a called endpoint. The 
calling and called endpoints have respective IP ad- 
dresses and are under the control of a single IP call serv- 
es er. An IP address is obtained from a network address 
translator that is logically connected to the IP call server 
via an IP network. The IP call sen^erthen substitutes the 
IP address of the calling endpoint with the first IP ad- 
dress obtained from the network address translator in 

20 ail call signaling messages intended for the called end- 
point. Conversely, the IP call server substitutes the sec- 
ond IP address obtained from the network translator 
with the IP address of the calling endpoint in all call sig- 
naling messages intended for the calling endpoint 

25 [0009] In accordance with a second embodiment of 
the invention is a method of providing anonymity in a 
Voice-over IP (VoIP) telephony network for calls estab- 
lished between a calling endpoint and a called endpoint. 
The calling and called endpoints have respective IP ad- 

30 dresses but are under the control separate IP call serv- 
ers. An IP address is obtained from an associated net- 
work address translator by the call server serving the 
calling endpoint (call server 1). Call server 1 substitutes 
the IP address of the calling endpoint with the IP address 

35 obtained from its associated network address translator 
in all call signaling messages intended for the called 
endpoint. All call signaling messages are routed through 
a second IP call server serving the called endpoint (call 
server 2). Call server 1 also substitutes the IP address 

40 obtained from its associated network address translator 
with the IP address of the calling endpoint in all call sig- 
naling messages intended for the calling endpoint. 
[0010] Call server 2 obtains an IP address from an as- 
sociated network address translator and substitutes the 
IP address of the called endpoint with the IP address 
obtained from Its associated network address translator 
in all call signaling messages intended for the calling 
endpoint and routed through call server 1 . Call server 2 
also substitutes the IP address obtained from its asso- 

so elated network address translator with the I P address of 
the called endpoint in all call signaling messages intend- 
ed for the called endpoint. If there are multiple (two or 
more) call servers invoJved in the a^iW not of thsstm 
imm per fur m neiwcrk address iransiaiion. 

ss [0011] The end result is the setup and establishment 
of a VoIP call between the endpoints in which the actual 
IP address of each endpoint is unknown to the other. 
Another benefit realized is address conservation in. for 
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example, private (enterprise) networks. 
[0012] Other aspects and features of the present in- 
vention will become apparent to those ordinarily skilled 
* in the art upon review of the following description of spe- 
cific embodiments of the invention in conjunction with 
the accompanying figures. 

BRIEF DESCRIPTION OF THE FIGURES 

[0013] 

FIGURE 1 1llustrates a diagram In which a NAT box 
under control of a call server is used to provide an- 
onymity between two endpoints. 
FIGURE 2 is a message diagram describing the 
messaging used to anonymously establish a VoIP 
call between endpoints In which a single NAT box 
and call server are utilized. 

FIGURE 3 illuslrales a diagram in which two NAT 
boxes under control of separate call servers are 
used to provide anonymity between two endpoints. 
FIGURE 4 Is a message diagram describing the 
messaging used to anonymously establish a VoIP 
call between endpoints in which more than one NAT 
box and call server are utilized. 

DETAILED DISCLOSURE OF THE INVENTION 

[0014] To understand how the present invention 
works a brief description of VoIP telephony as compared 
to circuit switched telephony Is useful. Votee-over Inter- 
net Protocol (VoIP) telephony is a means of providing 
telecommunication between endpoints over packet 
switched (as opposed to circuit switched) networks. Cir- 
cuit switched networks like the Public Switching Tele- 
phone Networic (PSTN) are what most people think of 
when they think of telecommunications. These are the 
networks used when placing calls over standard tele- 
phone sets. Packet switched networks are primarily da- 
ta networics like the Internet. 

[0015] Circuit switching provides a connection be- 
tween endpoints (telephone sets) meaning voice sig- 
nals are transferred from one endpoint to the other over 
a dedicated circuit route established by the circuit 
switched network infrastructure equipment. This Is done 
for every call on a per call basis. Circuit switching net- 
works identify endpoints according to their directory 
numbers. The directory numbers of the endpoints de- 
termine whether a call is local or long distance. This has 
implications on the amount of network Infreistructure in- 
volved in establishing the call. For Instance, long dis- 
tance calls are routed among more than one central of- 
fice while local calls can often be handled within a single 
central office. 

[001 6] Packet switching, by contrast, does not estab- 
lish connections between endpoints within the network 
infrastructure. Rather, voice signals are packetized into 
voice data packets and routed in streams over a packet 



data network such as the Internet. During routing over 
the packet data networic, voice data packets may be 
commingled with other data packets or travel diverse 
paths across the network. Thus, each voice data packet 
5 contains a unique identifier indicating its destination 
since it is not traveling over a pre-established connec- 
tion between endpoints. The unique identifier is the IP 
address of the destination. An IP address is a riumeric 
string given to fixed network entities. There are a variety 
10 of network entities that have fixed network addresses 
including routers, servers, gateways, etc. 
[0017] Practically: VoIP phone users initiate calls 
among themselves or to wireless or to circuit switched 
endpoints the same way that circuit switched phone us- 
^5 ers do, according to directory number Circuit switched 
endpoints can communicate with packet switched end- 
points and vice versa. The requisite conversions be- 
tween the dissimilar networks are handled by networic 
Interface infrastructure equipment. The interface equip- 
rnent converts circuit switched signals to voice data 
packets and data pacdcets to circuit switched signals 
while also reconciling the different endpoint call signal- 
ing and identification schemes. Since VoIP phone users 
use directory numbers the directory numbers must be 

25 associated with IP addresses in order to establish a call. 
[0018] In circuit switched telephony networks there 
are well known privacy calling features available to sub- 
scribers that provide anonymity. One such feature is 
calling number delivery blocking. These features pre- 

30 ventthe destination endpoint from knowing the directory 
number and other associated information of the origi- 
nating endpoint. This infomiation is readily available In 
the call signaling mechanisms of circuit switched sys- 
tems but c:an be suppressed upon request 

35 [0019] Some of the same privacy features exist for 
VoIP networks to a certain extent. Call signaling mech- 
anisms can prevent IP endpoints from receiving direc- 
tory information. However, call signaling mechanisms 
do not prevent the IP addresses of the nodes used in 

40 the communication session (phone call) from being dis- 
cerned. This Is a situation unique to VoIP networics that 
does not exist in circuit switched telephony networks. 
[0020] As stated eariier, there are two distinct data 
links used for making a call in a Voice-over IP (VoIP) 

45 telephony networic. There Is the call signaling path and 
the bearer path. The call signaling path can prevent end- 
point Identific^ation information from being provided to 
the other endpoint but does not necessarily shield the 
IP address of the nodes being used for the communica- 

so tion session. Thus, some endpoint identification Infor- 
mation can be obtained by knowing the IP address(es) 
of the nodes involved in the communication session. 
The present invention uses Network Address Transla- 
tion (NAT) functionality to provide an extra measure of 

55 anonymity to endpoints. 

[0021] Network Address Translation (NAT) essential- 
ly works as follows. Upon receipt of a data packet at a 
NAT box, the NAT box substitutes the originating end- 
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point IP node address with a different IP address. The 
destination endpoint only sees the substituted IP ad- 
dress and has no real knowledge of the originating end- 
point IP node address. Thus, the identity of the originat- 
ing endpoint's IP node is shielded from the destination s 
endpoint. 

[0022] FIGURE 1 illustrates a diagram in which a NAT 
box under control of a call server is used to provide ad- 
ditional anonymity between endpoints. Shown is a sinn- 
plified view of a packet data telephony network. A single io 
call server 11 0 is used to provide call setup functionality 
between a pair of endpoints 120, 130 labeled Endpoint 
A and Endpoint B, respectively. The endpoints are voice 
terminals that give users telecommunication ability. 
Endpoints 120, 130 communicate over a packet data i5 
network 140 such as the Internet, for instance. Also 
shown is a Network Address Translation (NAT) box 150 
connected to call server 110. NAT box 1 50 is used stra- 
tegically to conceal the IP addresses of the nodes (end- 
points) involved in the communication session. 20 
[0023] Call server 1 1 0 is a VoIP network entity having 
a fixed IP address. It manages call setup among its as- 
sociated endpoints via a call signaling path 160. A full 
scale Vol P network is typically comprised of multiple call 
servers each managing multiple endpoints. In order for 25 
endpoints under the control of different call servers to 
communicate with one another, their respective call 
servers must be able to communicate with one another. 
This is described further in FIGURE 3. 
[0024] Call signaling path 1 60 is used to exchange in- 30 
formation in the form of messages between call server 
110 and its associated endpoints 120, 130. Moreover, 
call servers utilize call signaling paths in order to con- 
nect them with other call servers (see, FIGURE 3). The 
messages exchanged are used to setup, establish, and 35 
tear down calls between endpoints. Establishing a call 
between endpoints means establishing separate 
streams between the endpoints known as a bearer path 
170. Bearer path 170 is used to convey the actual voice 
data packets between endpoints 120, 130. 40 
[0025] The messaging shown in FIGURES 2 and 4 is 
based upon the H.323 protocol. The messaging names 
used, however, are more functional In nature in order to 
describe how the present Invention works. These mes- 
sages have equivalents in other protocols and these ^5 
equivalents are readily determinable by those of ordi- 
nary skill in the art. The H.323 protocol is used for illus- 
trative purposes only and is not intended to restrict the 
present invention In any way. The H.323 protocol Is an 
ITU standard defining a set of call control, channel set- so 
up, and codec speclfk^ations for transmitting real-time 
voice and video over packet data networks. Con-e- 
spcr:d;r..^ the rTicssA^oS uluotrsioCJ i~t r»GwRE3 2 ^nd 4 
to other orotoc^*^ •-'^i^t**'^!*' *»i»-r%r%i/> *i^^t, ^-^^ ♦i^.^^ma 
ordinary skill in the art, ss 
[0026] Other protocols including, but not limited to. 
BICC and SIP, may be used without departing from the 
spirit or scope of the present invention. In fact, it is the 



ability to use other protocols in implementing the present 
Invention that makes the present invention particularly 
useful for providing additional anonymity to VoIP teleph- 
ony users. 

[0027] RGURE 2 is a message diagram describing 
the messaging used to anonymously establish a VoIP 
call between the endpoints 120,130 shown in FIGURE 
1. Endpoint A sends a Sefup message to its call server. 
Before attempting to set up the call with Endpoint B, the 
call server sends an Address Request message to a 
Network Address Translation (NAT) box. The NAT box 
retums an /Adc/ress Ass/gnedmessage to the call server. 
The Address Assigned message contains both a tem- 
porary address (A') and a NAT address. This step is per- 
formed in order to substitute the IP address of Endpoint 
A with the temporary IP address (A*) obtained from the 
NAT box. Now when call server 110 communicates with 
Endpoint B on behalf of Endpoint A it uses the A' IP ad- 
dress it obtained from the NAT box. 
[0028] At this point the call server sends a Caii Pro- 
ceeding message back to Endpoint A while also sending 
a Setup message to Endpoint B containing the A' IP ad- 
dress. Endpoint B retums an Alerting message to the 
call server which passes the Alerting message to End- 
point A. It is the responsibility of the call server to asso- 
ciate the NAT supplied IP address for Endpoint A with 
the actual IP address of Endpoint A. 
[0029] Endpoint B then sends a Connect message to 
the call server which interprets the NAT supplied IP ad- 
dress and fonwards the Connect message to Endpoint 
A completing the establishment of the call. A conversa- 
tion can now take place between Endpoints A and B 
over the bearer path via the NAT with the NAT substi- 
tuting the A' and A addresses. 

[0030] The mechanism for delivering the chosen con- 
trol protocol messages between the call server(s) and 
NAT box(es) can be via an extension to the Common 
Open Policy Servk:es (COPS) protocol or a media gate- 
way control protocol implementation. 
[0031] RGURE 3 illustrates a diagram In which two 
NAT boxes under control of separate call servers are 
used to provide anonymity between two endpoints. FIG- 
URE 3 deals with the scenario in which a call is spread 
over more than one call server. FIGURE 3 differs from 
FIGURE 1 in that an additional call server 310 and NAT 
box 350 are shown with an additional call signaling path 
360 connecting call servers 110, 310. The present in- 
vention can be similarly extended over a plurality of call 
servers in a VoIP network. 

[0032] FIGURE 4 represents a message diagram de- 
scribing the messaging used to anonymously establish 
a VoiP call between the endpoints shown in FIGURE 3. 
[0G33] Endpoint A sends a Setup messaqe to Caii 
CsrvSr 1 . D^for^ ett^rr^tifsg to s^t up tiitr Oxu vvilh Eiiu- 
point B, Call Server 1 sends an Address Re^uesf mes- 
sage to Network Address Translation (NAT) box 1 . NAT 
box 1 retums an Address Assigned message to the Call 
Server 1 . The Address Assigned message contains a 
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both a temporary address (A') and a NAT address 
(NAT1). This step is performed in order to substitute 
Endpoint A's IP address with the temporary IP address 
(A*) obtained from the NAT box 1 . Now when Call Server 
1 communicates with Call Server 2 on behalf of Endpoint 
A it uses the A* IP address it obtained from NAT box 1 , 
[0034] At this point Call Sender 1 forwards the Setup 
message to Call Server 2 using the A* IP address for 
Endpoint A. Call Server 2 detemnines from call signaling 
information contained in the Setup message that the 
destination of the Sefup message is Endpoint B. To pro- 
tect Endpoint B's anonymity Call Server 2 sends an Ad- 
dress Request message to Network Address Transla- 
tion (NAT) box 2. NAT box 2 returns an Address As- 
signed message to Call Server 2. The Address As- 
signed message contains a both a temporary address 
(B*) and a NAT address (NAT2). This step is perfonned 
in order to substitute Endpoint B's IP address with the 
temporary IP address (B') obtained from the NAT box 1 . 
Now when Call Server 2 communicates with Call Server 
1 on behalf of Endpoint B it uses the B* IP address it 
obtained from NAT box 2. 

[0035] Call Server 2 then sends a Cait Proceeding 
message back to Call Server 1 . Call Server 1, in turn, 
sends the Call Proceeding message to Endpoint A. At 
the same time, Call Server 2 sends a Setup message 
to Endpoint B. Endpoint B returns an A/erting message 
to Call Server 2 which passes the >i/e/t/n^ message to 
Call Server 1 and on to Endpoint A. Endpoint B then 
sends a Cor^nect message to the Call Server 2 which 
passes the Connect message to Call Server 1 and on 
to Endpoint A completing the establishment of the call. 
[0036] Thus, messages exchanged between the call 
servers use NAT supplied anonymous IP addresses for 
their respective endpoints. Call Server 2 does not know 
the true IP address of Endpoint A and Call Server 1 does 
not know the true IP address of Endpoint B, The call 
servers are responsible for reconciling the NAT supplied 
IP addresses of the endpoints with the actual IP ad- 
dresses of the endpoints In order to route the messages 
to the proper destinations. 

[0037] For implementing the present Invention using 
H.248, the call server generates an additional connec- 
tion request or a modify connection request to the NAT, 
treating the NAT as a packet-to-packet gateway. In such 
an implementation, the NAT controller (call server) con- 
trols logk:al NAT resources as endpoints and maps them 
to physical resources such as NAT, IP address, and port 
number, 

[0036] The preceding description references call 
server(s) 110, 310. A call server, for purposes of the 
present Invention, is any devrce that exhibits call sign- 
aling control over one or more endpoints. Devices In- 
cluding, but not limited to. media gateway controllers 
and gatekeepers, can be call servers. It is also antici- 
pated that call server functionality can be implemented 
within an endpoint itself. In addition: the present inven- 
tion is applcable to any packet data telephony network 



and should not be construed as limited to an IP or VoIP 
packet data network implementation. Reference to IP 
addresses is for illustration purposes only. One of ordi- 
nary skill in the art can apply the concepts of the present 
5 invention to other packet data networks. 

[0039] It is to be understood that the present invention 
Illustrated herein is readily implementable by those of 
ordinary skill in the art as a computer program product 
having a medium with a computer program embodied 
10 thereon. The computer program product is capable of 
being loaded and executed on the appropriate computer 
processing device(s) in order to cany out the method or 
process steps described. Appropriate computer pro- 
gram code in combination with hardware implements 
IS many of the elements of the present invention. This 
computer code Is often stored on storage media. This 
media can be a diskette, hard disk, CD-ROM, optical . 
storage media, or tape. The media can also be a mem- 
ory storage device or collection of memory storage de- 
20 vices such as read-only memory (ROM) or random ac- 
cess memory (RAM). Additionally, the computer pro- 
gram code can be transferred to the appropriate hard- 
ware over some type of data network. 
[0040] The present invention has been described, in 
25 part, with reference to flowchart illustration(s) or mes- 
sage diagram(s). It will be understood that each block 
of the flowchart illustrations or message diagram, and 
combinations of blocks in the flowchart illustrations or 
message diagrams, can be implemented by computer 
30 program instructions. 

[0041 ] These computer program Instructions may be 
loaded onto a general purpose computer, special pur- 
pose computer, or other programmable data processing 
apparatus to produce a machine, such that the instruc- 
ts tions which execute on the computer or other program- 
mable data processing apparatus create means for im- 
plementing the functions specified in the flowchart block 
(s) or message diagram(s). 

[0042] These computer program instructions may al- 
40 so be stored in a computer-readable memory that 
can_direct a computer or other programmable data 
processing apparatus to function In a particular manner, 
such that the instructions stored in the computer-read- 
able memory produce an arttele of manufacture includ- 
es ing instruction means which Implement the function 
specified In the flowchart block(s). The computer pro- 
gram instructions may also be loaded onto a computer 
or other programmable data processing apparatus to 
cause a series of operational steps to be performed on 
so the computer or other programmable apparatus to pro- 
duce a computer implemented process such that the in- 
structions which execute on the computer or other pro- 
grammable apparatus provide steps for implementing 
the functions specified in the flowchart block(s) or mes- 
S5 sage diagram(s). 

[0043] Accordingly, block(s) of flowchart illustrations 
or message dlagram(s) support combinations of means 
for pertorming the specified functions, combinations of 
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steps for performing the specified functions and pro- 
gram instruction means for performing the specified 
functions. It will also be understood that each block of 
flowchart Illustrations or message diagram, and combi- 
nations of blocks in flowchart illustrations, or message s 
diagrams can be implemented by special purpose hard- 
ware-based computer systenns that perform the spech 
fled functions or steps, or combinations of special pur- 
pose hardware and computer instructions. 
[0044] In the following claims, any means-plus-func- io 
tion clauses are intended to cover the structures de- 
scribed herein as performing the recited function and not 
only structural equivalents but also equivalent struc- 
tures. Therefore, it is to be understood that the foregoing 
Is Illustrative of the present Invention and is not to be is 
construed as limited to the specific embodiments dis- 
closed, and that modifications to the disclosed embod- 
iments, as well as other embodiments, are intended to 
be included within the scope of the appended claims. 
The invention is defined by the following claims, with 20 
equivalents of the claims to be included therein. 

Claims 

25 

1. A method of providing endpoint anonymity in a 
packet data telephony network comprising: 



2. 



3. 



4. A method of providing endpoint anonymity in a 
packet data telephony network comprising: 45 

receiving a temporary packet data network ad- 
dress from a network address translator; and 
substituting the packet data network address of 
a called endpoint with the temporary packet da- so 
ta network address obtained from said network 
address translator in call signaling messages 

5. The method of claim 4 wherein the call signaling ss 
messages are formatted in the H.248 protocol. 

6. The method of claim 4 wherein the call signaling 



messages are formatted in the Common Open Pol- 
icy Service (COPS) protocol. 

7. A method of providing calling endpoint anonymity 
in a packet data network telephony system compris- 
ing: 

receiving a request for a temporary packet data 
network address from a packet data telephony 
call server; and 

issuing a temporary packet data network ad- 
dress to said packet data telephony call server 
such that it can be substituted for the packet 
data network address of a calling endpoint in 
call signaling messages intended for a called 
endpoint. 

8. The method of claim 7 wherein the call signaling 
messages are formatted in the H.248 protocol. 

9. The method of claim 7 wherein the call signaling 
messages are formatted in the Common Open Pol- 
k^y Service (COPS) protocol. 

10- A method of providing called endpoint anonymity in 
a packet data network telephony system compris- 
ing: 

receiving a request for a temporary packet data 
network address from a packet data telephony 
call server; and 

issuing a temporary packet data network ad- 
dress to said packet data telephony call server 
such that it can be substituted for the packet 
data network address of a called endpoint in 
call signaling messages intended for a calling 
endpoint. 

11. The method of claim 10 wherein the call signaling 
messages are fonnatted in the H.248 protocol. 

12. The method of claim 10 wherein the call signaling 
messages are formatted in the Common Open Pol- 
icy Service (COPS) protocol. 

13. A computer program product for providing endpoint 
anonymity in a packet data telephony network for 
calls established between a calling endpoint having 
a packet data network address and a called end- 
point having a packet data network address, the 
computer program product having a medium with a 
computer program embodied thereon, the compu- 
i&f program product comprising: 

computer program code for requesting a tem- 
porary packet data network address from a net- 
work address translator; 
computer program code for receiving a tempo- 



receiving a temporary packet data network ad- 
dress from a network address translator; and so 
substituting the packet data network address of 
a calling endpoint with the temporary packet 
data network address obtained from said net- 
work address translator in call signaling mes- 
sages intended for a called endpoint. 3s 

The method of claim 1 wherein the call signaling 
messages are fomr>atted in the H.248 protocol. 

The method of claim 1 wherein the call signaling .40 
messages arefomnatted in the Common Open Pol- 
icy Sen^ice (COPS) protocol. 
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rary packet data network address from said net- 
work address translator; and 
computer program code for substituting the 
packet data network address of the calling end- 
point with the temporary packet data network 5 
address obtained from said network address 
translator in call signaling messages intended 
for said called endpoint. 

14. The computer program product of claim 13 wherein io 
the call signaling messages are formatted in the H. 
248 protocol. 

15. The computer program product of claim 13 wherein 

the call signaling messages are formatted in the is 
Common Open Policy Service (COPS) protocol. 

16. A computer program product for providing endpoint 
anonymity in a packet data telephony network for 
calls established between a calling endpoint having 20 
a packet data network address and a called end- 
point having a packet data network address, the 
computer program product having a medium with a 
computer program embodied thereon, the compu- 
ter program product comprising: 2S 

computer program code for requesting a tenv 
porary packet data network address from a net- 
work address translator; 

computer program code for receiving a tempo- 30 
rary packet data network address from said net- 
work address translator; and 
computer program code for substituting the 
packet data network address of the called end- 
point with the temporary packet data network 35 
address obtained from said network address 
translator in call signaling messages Intended 
for said calling endpoint. 

17. The computer program product of claim 1 6 wherein 40 
the call signaling messages are fonnatted In the H. 
248 protocol. 

18. The computer program product of claim 1 6 wherein 

the call signaling messages are formatted In the 4S 
Common Open Policy Service (COPS) protocol. 

19. A computer program product for providing endpoint 
anonymity for calls established between a calling 
endpoint having a packet data network address and so 
a called endpoint having a packet data network ad- 
dress, the computer program product having a me- 
dium with a computer program embodied thereon, 

the computer program product comprising: 

55 

computer program code for receiving a request 
for a temporary packet data network address 
from a packet data telephony call server; and 



computer program code for Issuing a temporary 
packet data network address to said packet da- 
ta telephony call server such that it can be sub- 
stituted for the packet data network address of 
the calling endpoint in call signaling messages 
intended for said called endpoint. 

20. The computer program product of claim 1 9 wherein 
the call signaling messages are fomnatted in the H. 
248 protocol. 

21 . The computer program product of claim 1 9 wherein 
the call signaling messages are fomnatted in the 
Common Open Policy Service (COPS) protocol. 

22. A computer program product for providing endpoint 
anonymity for calls established between a calling 
endpoint having a packet data network address and 
a called endpoint having a packet data network ad- 
dress, the computer program product having a me- 
dium with a computer program embodied thereon, 
the computer program product comprising: 

computer program code for receiving a request 
for a temporary packet data networic address 
from a packet data telephony call server; and 
computer program code for issuing a temporary 
packet data network address to said packet da- 
ta telephony call server such that it can be sub- 
stituted for the packet data network address of 
the called endpoint in call signaling messages 
intended for said calling endpoint. 

23. The computer program product of claim 22 wherein 
the call signaling messages are fomnatted in the H. 
248 protocol. 

24. The computer program product of claim 22 wherein 
the call signaling messages are formatted in the 
Common Open Policy Service (COPS) protocol, 

25. A system for providing endpoint anonymity in a 
packet data telephony network for calls established 
between a calling endpoint having a packet data 
network address and a called endpoint having a 
packet data network address, said system compris- 
ing: 

a call server for 

requesting a temporary packet data net- 
work address; 

receiving a temporary packet data network 
address; and 

substituting the packet data network ad- 
dress of the calling endpoint with the tem- 
porary packet data network address in call 
signaling messages Intended for said 
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called endpoint, and 

a network address translator responsive to 
said call server for: 

receiving, from said call server, a request 
for a tennporary packet data network ad- s 

dress; and 

Issuing a temporary packet data network 
address to said call server. 
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(57) Means for providing anonymity in a Voice-over 
IP (VoIP) telephony network for calls established be- 
tween a calling endpoint 120 and a called endpoint 130. 
The calling and called endpoints 120, 130 have respec- 
tive IP addresses and can be under the control of a sin- 
gle IP call server 110 or separate IP call servers 110, 
310. An IP address is obtained from a network address 
translator 1 50 that Is operatively connected to the IP call 
server 110. The IP call server 110 then substitutes the 
IP address of the calling endpoint 120 with the IP ad- 



dress obtained from the network address translator 1 50 
in all call signaling messages intended for the called 
endpoint 130. Conversely the IP call server 110 substi- 
tutes the IP address obtained from the network transla- 
tor 150 with the IP address of the calling endpoint 120 
In all call signaling messages intended for the calling 
endpoint 120. The end result is the setup and establish- 
ment of a VoIP call between the endpoints 120, 130 in 
which the actual IP address of each endpoint is un- 
known to the other. 
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